Virus and Spyware Removal Guides, uninstall instructions

Princess Evolution Ransomware

What is Princess Evolution?

Princess Evolution is an updated version of high-risk ransomware called Princess. Developers proliferate this virus by using the RIG Exploit Kit. Once infiltrated, Princess Evolution immediately encrypts most stored files, thereby making them unusable.

In addition, it generates a unique string (e.g, ".RcK1") and appends it to the name of each compromised file (for instance, "sample.jpg" might be renamed to "sample.jpg.RcK1").

Once data is encrypted, Princess Evolution generates two files ("^_READ_TO_RE5T0RE_[random_string].txt" and "^_READ_TO_RE5T0RE_[random_string].html"), placing copies of each in all existing folders.

   
Porn Scrubber Unwanted Application (Mac)

What is Porn Scrubber?

Created by the developers of Advanced Mac Cleaner and Mac Mechanic, Porn Scrubber is a dubious application that supposedly helps users to remove traces of all visited porn websites.

The app is very similar to Mac Auto Fixer. Initially, Porn Scrubber may seem legitimate and useful, however, developers proliferate this potentially unwanted application (PUA) using a deceptive marketing method called "bundling". Therefore, Porn Scrubber often infiltrates systems without users’ permission.

   
FedEx Tracking Email Virus

What is FedEx Tracking Email Virus?

Similar to eFax Email Virus, "FedEx Tracking Email Virus" is a spam email campaign used to proliferate a high-risk trojan called Hancitor. Research shows that developers send thousands of deceptive emails that encourage users to open attached MS Office documents. Once opened, the attachments stealthily download and install the Hancitor trojan.

   
Searchadministrator.com Redirect

What is searchadministrator.com?

Search Administrator is a deceptive app that supposedly enhances the browsing experience by optimizing search results. This functionality may seem legitimate and useful, however, Search Administrator is categorized as a potentially unwanted program (PUP) and a browser hijacker.

There are three main reasons for these negative associations: 1) stealth installation without users' consent; 2) promotion of a fake search engine, and; 3) tracking of browsing activity.

   
Medialink.mobi POP-UP Redirect

What is medialink.mobi?

medialink.mobi is a rogue website (virtually identical to ads.dlvr.live, namel.net, fresh-info.news and many others) that redirects visitors to other untrustworthy websites. Most users do not visit medialink.mobi willingly - they are redirected to the site via potentially unwanted programs (PUPs).

These programs are often installed inadvertently, cause redirects, deliver intrusive advertisements, and misuse system resources.

   
Leblonmedia.com POP-UP Redirect

What is leblonmedia.com?

leblonmedia.com is one of many similar rogue websites (including ads.dlvr.live, namel.net, fresh-info.news, etc.) that redirects users to other dubious/untrustworthy sites. leblonmedia.com is often visited inadvertently - most users arrive at the site through potentially unwanted programs (PUPs) that are often installed without users' knowledge.

In addition to unwanted redirects, PUPs deliver intrusive advertisements, gather information, and misuse computer resources.

   
Cmb Dharma Ransomware

What is Cmb Dharma?

Cmb Dharma is another variant of a high-risk ransomware infection called Dharma. Immediately after infiltration, Cmb Dharma encrypts most stored files, thus making them unusable. During the process, Cmb Dharma appends each filename with the ".id-[victim's_ID].[paymentbtc@firemail.cc].cmb" extension.

For instance, "sample.jpg" might be renamed to a filename such as "sample.jpg.id-1E857D00.[paymentbtc@firemail.cc].cmb". Once data is encrypted, Cmb Dharma opens a pop-up window and creates a text file ("FILES ENCRYPTED.txt"), placing a copy in every existing folder.

   
Ads.dlvr.live POP-UP Redirect

What is ads.dlvr.live?

ads.dlvr.live is one of many rogue websites available (virtually identical to geniustrainer.net, push4check.comumprow.com, etc.) that forces visitors to be redirected to other untrustworthy sites. Users generally arrive at ads.dlvr.live inadvertently - potentially unwanted programs (PUPs) cause redirects to it.

PUPs are often installed inadvertently and deliver intrusive ads, collect information, and affect computer performance.

   
Namel.net POP-UP Redirect

What is namel.net?

Namel.net is one of many rogue websites (virtually identical to umprow.com, geniustrainer.net, push4check.com, etc.) designed to cause redirects to other untrustworthy and potentially malicious sites. Most users visit namel.net inadvertently - they are redirected by potentially unwanted programs (PUPs).

These programs are generally installed without users' consent, cause redirects, deliver intrusive ads, collect data, and misuse system resources.

   
Fresh-info.news POP-UP Redirect

What is fresh-info.news?

Identical to letsupdateourdomain.com, join.pro-gaming-world.com, check2push.com, and many others, fresh-info.news is a rogue website that redirects visitors to various other untrustworthy websites.

Most users do not generally visit fresh-info.news willingly - they are redirected to it by potentially unwanted programs (PUPs) that are installed inadvertently. PUPs record user-system information, deliver intrusive ads, and can affect computer performance.

   

Page 1655 of 2204

<< Start < Prev 1651 1652 1653 1654 1655 1656 1657 1658 1659 1660 Next > End >>
About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.

Virus and malware removal

This page provides information on how to avoid infections by malware or viruses and is useful if your system suffers from common spyware and malware attacks.

Learn about malware removal